mfa-authn-config.xml example for Shibboleth/CAS/DUO integration

gistfile1.txt

<?xml version="1.0" encoding="UTF-8"?>
<beans xmlns="http://www.springframework.org/schema/beans"
       xmlns:context="http://www.springframework.org/schema/context"
       xmlns:util="http://www.springframework.org/schema/util"
       xmlns:p="http://www.springframework.org/schema/p"
       xmlns:c="http://www.springframework.org/schema/c"
       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
       xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
                           http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context.xsd
                           http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util.xsd"

       default-init-method="initialize"
       default-destroy-method="destroy">

	
    <util:map id="shibboleth.authn.MFA.TransitionMap">
        
		<entry key="">
			<bean parent="shibboleth.authn.MFA.Transition" p:nextFlow="authn/Shibcas" />
        </entry>
		
		<entry key="authn/Shibcas">
            <bean parent="shibboleth.authn.MFA.Transition" p:nextFlowStrategy-ref="checkSecondFactor" />
	
        </entry>
		
    </util:map>
	
	<bean id="checkSecondFactor" parent="shibboleth.ContextFunctions.Scripted" factory-method="inlineScript">
		<constructor-arg>
			<value>
				
				<![CDATA[ 
					nextFlow = "authn/Duo"; 
					logger = Java.type("org.slf4j.LoggerFactory").getLogger("net.shibboleth.idp.attribute");
					logger.info(" **************** Within the mfa-authn-config second authentication **************");
					nextFlow;
				]]> 
			
			</value>
		</constructor-arg>
	</bean>
</beans>